Microsoft Update allows Office 365 users to report phishing messages to Teams
Earlier last week, Microsoft announced that it was working on updating Microsoft Defender for Office 365 to allow Microsoft Teams users to alert their organization’s security team to any questionable messages they receive.
Starting now, Microsoft Defender for Office 365 (formerly Office 365 Advanced Threat Protection or Office 365 ATP) protects organizations against malicious threats from email messages, links, and collaboration tools.
It appears that this developing feature is intended to allow administrators to filter out potentially dangerous messages targeting employees with malicious payloads or trying to redirect them to phishing websites.
“End users will be able to report suspicious Microsoft Teams messages as a security threat, just like they do for email – to help the organization protect against attacks via Microsoft Teams,” Microsoft explains on the sheet. Microsoft 365 route.
Additionally, Redmond is also working on updating the Defender for Office 365 submission experience to categorize messages reported by users into individual tabs for Phish, Spam (Junk), etc., according to reports from users.
While the upgraded submission feature is expected to reach general availability next month, the new user reporting feature is now in preview and will most likely be rolling out to standard multi-tenants until end of January 2023 for desktop and web customers worldwide.
It looks like these new Defender for Office 365 features build on improvements announced in July 2021, allowing Microsoft Teams to automatically block phishing attempts.
This achievement was made by Microsoft extending Defender for Office 365 Safe Links protection to the Teams communication platform to help protect users from malicious URL-based phishing attacks.
In recent news, Microsoft explained that “Safe Links in Defender for Office 365 scans URLs at the time of click to ensure users are protected with the latest information from Microsoft Defender.”
To speed up the process, Redmond also began rolling out Built-in Protection to Defender for Office 365 in November 2021, a new feature that automatically enables recommended settings and policies to ensure all new and existing users get at least one base level. protection.
The implementation of this new built-in protection was designed to fill gaps in enterprise protection coverage and is designed to improve the organization’s overall security posture by significantly reducing the risk of a breach.
It appears that this security upgrade for all Office 365 customers was quickly followed, in January 2022, by the addition of differentiated protection for priority enterprise accounts (i.e. critical accounts of high-level employees such as senior executives, those who attackers most often target).